Security Control (COO office/Audit, Compliance and Risks Control)

Company Overview
The company provides insurance and asset management services worldwide. It offers a range of insurance products, including life and savings, property and casualty, and health.

Job Description
To provide a clear view in terms of Cyber Security and Risks posture across tribes and platforms
-Assess and report on Cyber Security control effectiveness in infrastructure and application level
-Recommend and facilitate the control improvement and/or remediation across tribes and platforms

◆Key Accountabilities：
【Security Control Assessment】
-Carry out IS and IT risks assessment to IT controls and processes and define assessment criteria for control enhancement

【Defining the roadmap and driving for improvement for the security monitoring and reporting systems】
-Provide recommendation on security monitoring and reporting systems to enhance Cyber defense for tactical and long-term control improvement in the form of Project and BAU
-Ensure the IS and IT risks (including but not limited to technology risks, project risks, vendor management, infrastructure, applications etc.) are on regular monitoring and under control

【Defining KPI and Security performance reporting】
-Design dashboard and KPI to indicate Cyber Security performance and risks level for senior management
-Create and deliver regular dashboards to management targeting the Cyber Security posture across tribes and platform (reporting at actionable level)
-Present the strategic view to senior executives and articulate Cyber Security in a business context

【Support in decision making for Cyber Security and defense enhancement】
-Support management in decision making with recommendation to IT control enhancements to improve the defense to Cyberattack
-Report on risks level for control enhancement across tribes and platform, and budget requirement if applicable

【Communicate with Security stakeholders with appropriate governance process / Support and facilitate the necessary remediation in Controls and processes】
-Conduct regular review with key Security and Risks stakeholders to ensure the remediation/enhancement process to IT control are on track
-Provide recommendation to controls and processes owner in terms of enhancement
-Work with tribes and platforms and business stakeholders to facilitate understanding of controls weaknesses, and consistent/optimized implementation of required improvements

【Assurance of control enhancement are maintained on an on-going basis】
-Ensure the improvement in Cyber defense are maintained on an on-going basis across tribes and platforms
-Provide recommendation to management on regular enhancement and improvement target and make sure it is aligned with business and product strategy
-Define success criteria and measurement for BAU process transition

Requirements
Bilingual language fluency in Japanese & English
◆RElated experience more than 10 years
◆Related qualification such as CISM, CISA, CISSP
◆Technical knowledge (MUST)
◆Security and Risks stakeholder management / engagement (MUST)
◆Problem solving / Decision making (MUST)
◆Facilitation / Communication (MUST)
◆KPI / Remediation performance indicator (SHOULD)

Additional Job Information
Job Grade = E1(マネージャーではありませんが管理職です)
Salary Range = 10M to 14M Pkg
Target age: up to 40's (Not 50's)
Fluent English & Japanese is MUST (ビジネスレベルの英語・日本語ともに必須)
Cannot consider to hire as mid-career if the experience are shorter than 2 years (これまでの経験年数が2年未満の方は中途採用として検討できかねますのでご遠慮願います)
Experience in insurance/Finance companies is not necessary(金融・保険業界での業務経験は必須ではありません-あれば尚可)

JapanTokyo Map

Name of person in charge of hiring：